Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
428
Views
0
Helpful
2
Replies

The cryptographic algorithms required ... error - SecureClient

grahamwarner
Level 1
Level 1

‎10-24-2023 04:56 PM

Error messages, topology, running config attached. Trying to connect from PC3 to R1 via SecureClient, I am able to ping. I tried 4.10.07073 and 5.0.05040 versions of AnyConnect/SecureClient, as far as I can tell encryption and DH group shouldn't be the issue. R1 is the CA so it's signing its own cert.

IOS: Cisco IOS Software, IOSv Software (VIOS-ADVENTERPRISEK9-M), Version 15.9(3)M6, RELEASE SOFTWARE (fc1)

topology.png

secureclient error.png

Labels:
Preview file
10 KB
0 Helpful
2 Replies 2

grahamwarner
Level 1
Level 1

‎10-25-2023 02:56 PM - edited ‎10-25-2023 02:56 PM

ISP router config attached as well. One strange thing I noticed on R1 is that the 'IKEv2-po1' is created, but never applied anywhere:

crypto ikev2 policy IKEv2-po1

proposal IKEv2-prop1

Preview file
4 KB
0 Helpful

grahamwarner
Level 1
Level 1

‎10-25-2023 03:27 PM

Seeing 'HTTP 85 HTTP/1.1 401 Unauthorized' packet in pcap. 

attempting to VPN to R1 pcap.png

0 Helpful
Customers Also Viewed These Support Documents